$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD1A2/EFE0404A9B3C11EEB3FCAD49C4F9AE02/883D22EE9B3E11EE92E35D68C4F9AE02.roa File: 883D22EE9B3E11EE92E35D68C4F9AE02.roa (raw, json) Hash identifier: J89e6WIiuXyGUhaavTtLjhezBogmJw6cNJ1cVc7a2VU= Subject key identifier: 9B:E8:57:0C:86:8A:EE:85:98:2F:17:04:2C:46:C2:2D:17:13:DB:E9 Certificate issuer: /CN=A91CD1A2/serialNumber=8F06869CEFCD5C2723132E3EF9CDB7A461D01B19 Certificate serial: 9F Authority key identifier: 8F:06:86:9C:EF:CD:5C:27:23:13:2E:3E:F9:CD:B7:A4:61:D0:1B:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jwaGnO_NXCcjEy4--c23pGHQGxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD1A2/EFE0404A9B3C11EEB3FCAD49C4F9AE02/883D22EE9B3E11EE92E35D68C4F9AE02.roa Signing time: Thu 03 Oct 2024 05:09:25 +0000 ROA not before: Thu 03 Oct 2024 05:09:25 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136582 IP address blocks: 103.203.241.0/24 maxlen: 24 2001:df4:39c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD1A2/EFE0404A9B3C11EEB3FCAD49C4F9AE02/jwaGnO_NXCcjEy4--c23pGHQGxk.crl rsync://rpki.apnic.net/member_repository/A91CD1A2/EFE0404A9B3C11EEB3FCAD49C4F9AE02/jwaGnO_NXCcjEy4--c23pGHQGxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jwaGnO_NXCcjEy4--c23pGHQGxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD1A2/serialNumber=8F06869CEFCD5C2723132E3EF9CDB7A461D01B19 Validity Not Before: Oct 3 05:09:25 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fe2705-b535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:49:84:94:ec:c8:e0:15:ae:13:9d:a9:b7:9d: a2:60:f7:f6:a8:61:cf:43:0f:ff:e4:92:56:38:e8: 48:ab:29:62:84:38:48:57:76:77:cb:d8:a3:21:d7: 43:26:20:c6:9c:5f:e7:ea:23:65:08:b4:86:79:6d: af:60:fc:97:44:06:8f:09:f1:18:e4:23:a3:3b:e1: de:f7:db:ed:2e:da:60:8e:e8:4f:38:25:e4:b4:52: f5:67:9f:01:7d:28:a7:8c:cd:7c:e6:f8:f5:57:6f: d7:5e:46:e3:ce:57:83:45:72:ba:af:71:9f:af:b1: f3:8c:5a:0a:b8:48:5c:15:d0:01:3c:ee:6b:c2:e9: f2:b8:92:ee:55:41:e4:7e:3d:44:14:1a:cd:4f:9d: 1c:b1:20:7a:78:62:1c:45:47:92:48:cf:3a:ac:f5: e2:44:60:d0:55:3d:b0:94:8e:c5:d2:bb:df:bf:1b: d0:52:c2:e4:b2:65:76:29:92:27:25:29:21:fa:e5: 4e:16:2d:3d:db:06:81:65:9b:be:cc:48:cc:6b:82: 87:f5:35:bc:ad:8b:4b:2c:3f:f7:34:ff:38:e7:49: 5d:e9:7e:71:bb:5a:e7:a7:8b:8e:38:34:55:32:63: b0:32:68:56:f1:6f:68:c4:7b:52:b9:7a:07:86:98: d3:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E8:57:0C:86:8A:EE:85:98:2F:17:04:2C:46:C2:2D:17:13:DB:E9 X509v3 Authority Key Identifier: keyid:8F:06:86:9C:EF:CD:5C:27:23:13:2E:3E:F9:CD:B7:A4:61:D0:1B:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/EFE0404A9B3C11EEB3FCAD49C4F9AE02/jwaGnO_NXCcjEy4--c23pGHQGxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jwaGnO_NXCcjEy4--c23pGHQGxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/EFE0404A9B3C11EEB3FCAD49C4F9AE02/883D22EE9B3E11EE92E35D68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.203.241.0/24 IPv6: 2001:df4:39c0::/48 Signature Algorithm: sha256WithRSAEncryption 8f:26:51:f0:e9:27:c1:fa:9c:d2:c9:61:91:0f:1c:3b:85:64: e2:c4:6e:30:d4:08:79:f3:0a:3a:ef:30:22:23:92:c5:d4:16: e4:13:41:31:32:9a:28:25:66:ea:70:1e:18:e2:6c:ba:1f:bb: b6:02:19:01:cf:05:9a:80:f8:f7:8e:4f:8f:e0:aa:06:d4:d2: 65:d1:af:d4:8b:72:c9:e6:ab:47:29:4a:e2:1e:a3:83:b8:91: ee:10:7b:f8:46:77:8d:b2:44:e5:7c:14:6e:df:f8:17:96:ca: dc:c6:bb:3c:85:20:1f:a8:66:1f:69:1a:51:17:93:2c:b2:d0: 27:1d:5c:b5:7d:7e:4a:90:16:50:e9:1b:99:e0:3d:9e:c0:98: 7f:4e:ef:77:2e:2e:40:7f:16:a3:4f:c0:7f:be:2a:0d:5d:b7: b6:1c:b5:6b:31:8f:11:71:28:8e:ad:b8:c5:3a:a7:fb:6f:d9: 5e:ac:bf:da:35:f9:aa:72:36:ae:03:30:03:3f:30:11:c2:0d: 5d:67:57:90:9b:85:52:77:cb:64:df:87:f6:30:c9:70:af:5b: 3b:0f:15:e5:6b:2f:c2:39:de:36:f6:d4:eb:33:04:25:fc:c5: 3d:f7:4a:71:5e:d3:e9:db:d9:d2:9f:d5:ab:db:e0:c2:32:85: cc:6a:3b:2a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QxQTIxMTAvBgNVBAUTKDhGMDY4NjlDRUZDRDVDMjcyMzEzMkUzRUY5Q0RCN0E0 NjFEMDFCMTkwHhcNMjQxMDAzMDUwOTI1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZlMjcwNS1iNTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0mElOzI4BWuE52pt52iYPf2qGHPQw//5JJWOOhIqylihDhIV3Z3y9ijIddD JiDGnF/n6iNlCLSGeW2vYPyXRAaPCfEY5COjO+He99vtLtpgjuhPOCXktFL1Z58B fSinjM185vj1V2/XXkbjzleDRXK6r3Gfr7HzjFoKuEhcFdABPO5rwunyuJLuVUHk fj1EFBrNT50csSB6eGIcRUeSSM86rPXiRGDQVT2wlI7F0rvfvxvQUsLksmV2KZIn JSkh+uVOFi092waBZZu+zEjMa4KH9TW8rYtLLD/3NP8450ld6X5xu1rnp4uOODRV MmOwMmhW8W9oxHtSuXoHhpjTvQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJvoVwyG iu6FmC8XBCxGwi0XE9vpMB8GA1UdIwQYMBaAFI8GhpzvzVwnIxMuPvnNt6Rh0BsZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDFBMi9FRkUwNDA0QTlC M0MxMUVFQjNGQ0FENDlDNEY5QUUwMi9qd2FHbk9fTlhDY2pFeTQtLWMyM3BHSFFH eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p3YUduT19OWENjakV5NC0tYzIzcEdIUUd4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0QxQTIvRUZFMDQwNEE5QjNDMTFFRUIzRkNBRDQ5QzRGOUFFMDIvODgzRDIyRUU5 QjNFMTFFRTkyRTM1RDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABny/EwDwQCAAIwCQMHACABDfQ5wDANBgkqhkiG9w0BAQsF AAOCAQEAjyZR8Oknwfqc0slhkQ8cO4Vk4sRuMNQIefMKOu8wIiOSxdQW5BNBMTKa KCVm6nAeGOJsuh+7tgIZAc8FmoD4945Pj+CqBtTSZdGv1ItyyearRylK4h6jg7iR 7hB7+EZ3jbJE5XwUbt/4F5bK3Ma7PIUgH6hmH2kaUReTLLLQJx1ctX1+SpAWUOkb meA9nsCYf07vdy4uQH8Wo0/Af74qDV23thy1azGPEXEojq24xTqn+2/ZXqy/2jX5 qnI2rgMwAz8wEcINXWdXkJuFUnfLZN+H9jDJcK9bOw8V5WsvwjneNvbU6zMEJfzF PfdKcV7T6dvZ0p/Vq9vgwjKFzGo7Kg== -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:05 2024 by rpki-client on console-fra.rpki-client.org